Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-17532

Remove direct dependency from openam-secrets to secrets-backend-gcpkms

    XMLWordPrintable

    Details

    • Bug
    • Status: Open
    • Major
    • Resolution: Unresolved
    • None
    • None
    • SAML, secrets
    • None
    • Rank:
      1|i03y0g:

      Description

      Bug description

      IG has a dependency to openam-federation-library, that itself transitively depends on secrets-backend-gcpkms.

      That seems a bit weird, given that COMMONS Secrets has an SPI that allows low coupling. And that brings almost 20MB of unwanted additional dependencies (gRPC, ...)

      --- maven-dependency-plugin:3.1.1:tree (default-cli) @ openig-saml ---
      org.forgerock.openig:openig-saml:jar:7.1.0-SNAPSHOT
      \- org.forgerock.am:openam-federation-library:jar:7.1.0-M2021.02:compile
         \- org.forgerock.am:openam-jwt-utils:jar:7.1.0-M2021.02:compile
            \- org.forgerock.am:openam-secrets:jar:7.1.0-M2021.02:compile
               \- org.forgerock.commons:secrets-backend-gcpkms:jar:26.1.0-20210308155256-e60f441:compile
      

        Attachments

          Activity

            People

            Unassigned Unassigned
            guillaume.sauthier Guillaume Sauthier
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated: